Published: 26/09/2006 Updated: 17/10/2018

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

VMScore: 495

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Integer signedness error in the i386_set_ldt call in FreeBSD 5.5, and possibly earlier versions down to 5.2, allows local users to cause a denial of service (crash) via unspecified arguments that use negative signed integers to cause the bzero function to be called with a large length parameter, a different vulnerability than CVE-2006-4172.

Vulnerable Product	Search on Vulmon	Subscribe to Product
freebsd freebsd 5.4
freebsd freebsd
freebsd freebsd 5.2.1
freebsd freebsd 5.3
freebsd freebsd 5.2

source: wwwsecurityfocuscom/bid/20158/info FreeBSD is prone to multiple local denial-of-service vulnerabilities These issues occur because of input-validation flaws related to the handling of integers An attacker may leverage these issues to cause the affected computer to crash, denying service to legitimate users Versions 52 throug ...

Advisories published.

Advisories [RISE-2009003] Linux eCryptfs parse_tag_3_packet Encrypted Key Buffer Overflow Vulnerability Heap-based buffer overflow in the parse_tag_3_packet function in fs/ecryptfs/keystorec in the eCryptfs subsystem in the Linux kernel before 26304 allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving a crafted e

NVD-CWE-Other http://www.idefense.com/intelligence/vulnerabilities/display.php?id=415 http://secunia.com/advisories/22064 http://www.securityfocus.com/bid/20158 http://securitytracker.com/id?1016927 http://www.securityfocus.com/archive/1/446946/100/0/threaded https://nvd.nist.gov https://github.com/risesecurity/advisories https://www.exploit-db.com/exploits/28648/

CVE-2006-4178

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect